Bugtraq mailing list archives
Possible root exploit in Linux povray
From: luke () UTW COM (Luke)
Date: Tue, 28 Jul 1998 21:57:18 -0600
In the official (3.02) release of povray for linux, the s-povray binary must be installed suid root to function (complains about not being able to open /dev/console without it). Giving a large filename: $ s-povray -I`perl -e "print 'A'x1000"` results in segfault. Glancing over the code reveals a lot of strcpy()'s and strcat()'s. Dunno, need sleep now, work on exploit later if have time :) Luke
Current thread:
- Possible root exploit in Linux povray Luke (Jul 28)
- <Possible follow-ups>
- Re: Possible root exploit in Linux povray Dag-Erling Coidan Smørgrav (Jul 29)
- Re: Possible root exploit in Linux povray James Youngman (Jul 30)